0 Replies Latest reply on Jul 11, 2011 6:39 AM by cdsvvxv

    channelset.login() with encrypted password in database

    cdsvvxv Level 1

      Hello,

       

      I have a Flex client that is making a:

       

      remoteObject.channelset.login("username" , "unencrypted-password");

       

      call, and This hits the server as expected, but when the comparison between the sent password and the database password occurs, there is a mismatch as the  password in the database in encrypted. Is there a way to:

       

      1) create a custom login command that can encrypt the password before the comparison is made;

      2)  A way to create a filter that will intercept the channelset.login()  call, so that the password can be removed from the call and replaced  with the encrypted version of it?

       

      I am using java/Spring/Spring-security/BlazeDS and CAS as the server side technologies.

       

      Thanks.